Total
90913 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2003-0496 | 1 Microsoft | 2 Windows 2000, Windows 2000 Terminal Services | 2023-12-10 | 7.2 HIGH | N/A |
Microsoft SQL Server before Windows 2000 SP4 allows local users to gain privileges as the SQL Server user by calling the xp_fileexist extended stored procedure with a named pipe as an argument instead of a normal file. | |||||
CVE-2004-0292 | 1 Karjasoft | 1 Sami Http Server | 2023-12-10 | 10.0 HIGH | N/A |
Buffer overflow in KarjaSoft Sami HTTP Server 1.0.4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long HTTP GET request. | |||||
CVE-2004-0687 | 4 Openbsd, Suse, X.org and 1 more | 4 Openbsd, Suse Linux, X11r6 and 1 more | 2023-12-10 | 7.5 HIGH | N/A |
Multiple stack-based buffer overflows in (1) xpmParseColors in parse.c, (2) ParseAndPutPixels in create.c, and (3) ParsePixels in parse.c for libXpm before 6.8.1 allow remote attackers to execute arbitrary code via a malformed XPM image file. | |||||
CVE-2001-0350 | 1 Microsoft | 1 Windows 2000 | 2023-12-10 | 4.6 MEDIUM | N/A |
Microsoft Windows 2000 telnet service creates named pipes with predictable names and does not properly verify them, which allows local users to execute arbitrary commands by creating a named pipe with the predictable name and associating a malicious program with it, the second of two variants of this vulnerability. | |||||
CVE-2004-1971 | 1 Oscar Fafian | 1 Video Gallery | 2023-12-10 | 5.0 MEDIUM | N/A |
modules.php in PHP-Nuke Video Gallery Module 0.1 Beta 5 allows remote attackers to gain sensitive information via an HTTP request with an invalid (1) catid or (2) clipid parameter, which reveals the full path in an error message. | |||||
CVE-1999-1253 | 1 Sco | 2 Internet Faststart, Openserver | 2023-12-10 | 7.2 HIGH | N/A |
Vulnerability in a kernel error handling routine in SCO OpenServer 5.0.2 and earlier, and SCO Internet FastStart 1.0, allows local users to gain root privileges. | |||||
CVE-2003-1416 | 1 Bisonftp | 1 Bisonftp Server 4 | 2023-12-10 | 4.3 MEDIUM | N/A |
BisonFTP Server 4 release 2 allows remote attackers to cause a denial of service (CPU consumption) via a long (1) ls or (2) cwd command. | |||||
CVE-2003-0082 | 1 Mit | 2 Kerberos, Kerberos 5 | 2023-12-10 | 5.0 MEDIUM | N/A |
The Key Distribution Center (KDC) in Kerberos 5 (krb5) 1.2.7 and earlier allows remote, authenticated attackers to cause a denial of service (crash) on KDCs within the same realm using a certain protocol request that causes the KDC to corrupt its heap (aka "buffer underrun"). | |||||
CVE-2004-0182 | 1 Gnu | 1 Mailman | 2023-12-10 | 5.0 MEDIUM | N/A |
Mailman before 2.0.13 allows remote attackers to cause a denial of service (crash) via an email message with an empty subject field. | |||||
CVE-2002-1140 | 1 Microsoft | 1 Services | 2023-12-10 | 5.0 MEDIUM | N/A |
The Sun Microsystems RPC library Services for Unix 3.0 Interix SD, as implemented on Microsoft Windows NT4, 2000, and XP, allows remote attackers to cause a denial of service (service hang) via malformed packet fragments, aka "Improper parameter size check leading to denial of service." | |||||
CVE-2002-0891 | 1 Juniper | 1 Netscreen Screenos | 2023-12-10 | 5.0 MEDIUM | N/A |
The web interface (WebUI) of NetScreen ScreenOS before 2.6.1r8, and certain 2.8.x and 3.0.x versions before 3.0.3r1, allows remote attackers to cause a denial of service (crash) via a long user name. | |||||
CVE-2000-0447 | 1 Network Associates | 1 Webshield | 2023-12-10 | 7.5 HIGH | N/A |
Buffer overflow in WebShield SMTP 4.5.44 allows remote attackers to execute arbitrary commands via a long configuration parameter to the WebShield remote management service. | |||||
CVE-2004-1626 | 1 Code-crafters | 1 Ability Server | 2023-12-10 | 5.0 MEDIUM | N/A |
Buffer overflow in Ability Server 2.34, and possibly other versions, allows remote attackers to execute arbitrary code via a long STOR command. | |||||
CVE-2001-0564 | 1 Apc | 1 Ap9606 | 2023-12-10 | 5.0 MEDIUM | N/A |
APC Web/SNMP Management Card prior to Firmware 310 only supports one telnet connection, which allows a remote attacker to create a denial of service via repeated failed logon attempts which temporarily locks the card. | |||||
CVE-1999-0890 | 1 Ihtml Merchant | 1 Ihtml Merchant | 2023-12-10 | 7.5 HIGH | N/A |
iHTML Merchant allows remote attackers to obtain sensitive information or execute commands via a code parsing error. | |||||
CVE-2002-1503 | 1 Afd | 1 Afd | 2023-12-10 | 7.2 HIGH | N/A |
Buffer overflow in Automatic File Distributor (AFD) 1.2.14 and earlier allows local users to gain privileges via a long MON_WORK_DIR environment variable or -w (workdir) argument to (1) afd, (2) afdcmd, (3) afd_ctrl, (4) init_afd, (5) mafd, (6) mon_ctrl, (7) show_olog, or (8) udc. | |||||
CVE-2002-1585 | 1 Sun | 2 Solaris, Sunos | 2023-12-10 | 5.0 MEDIUM | N/A |
Unknown vulnerability in Solaris 8 for Intel and Solaris 8 and 9 for SPARC allows remote attackers to cause a denial of service via certain packets that cause some network interfaces to stop responding to TCP traffic. | |||||
CVE-2002-1961 | 1 Finjan Software | 1 Surfingate | 2023-12-10 | 7.5 HIGH | N/A |
Finjan Software SurfinGate 6.0 and 6.0 1 allows remote attackers to bypass URL access restrictions via a URL whose hostname portion uses a fully qualified domain name (FQDN) that ends in a "." (dot). | |||||
CVE-2002-1466 | 1 Cafelog | 1 B2 | 2023-12-10 | 10.0 HIGH | N/A |
CafeLog b2 Weblog Tool 2.06pre4, with allow_fopen_url enabled, allows remote attackers to execute arbitrary PHP code via the b2inc variable. | |||||
CVE-1999-0799 | 1 Cmu | 1 Bootpd | 2023-12-10 | 10.0 HIGH | N/A |
Buffer overflow in bootpd 2.4.3 and earlier via a long boot file location. |